Skip to content

Commit

Permalink
doc: add security document
Browse files Browse the repository at this point in the history 
Signed-off-by: Richard Zak <richard.j.zak@gmail.com>
  • Loading branch information
@rjzak
rjzak committed Dec 25, 2023
1 parent f6a5cee commit 788a2e7
Showing 1 changed file with 10 additions and 0 deletions.
10 changes: 10 additions & 0 deletions SECURITY.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
## MalwareDB Security & Vulnerability Disclosure Process

If any vulnerability or security issue is discovered in MalwareDB (or any repository under the [MalwareDB](https://github.com/malwaredb/) organization, please inform the maintainer via email at richard.j.zak *at* gmail.com. If you wish to communicate via GPG, send an email requesting a GPG public key, or send an email to rjzak *at* protonmail.ch.

Please include:
* The steps needed to reproduce the vulnerability;
* The vulnerable version(s), preferably with Git hash (`git log -1`);
* and any additional files to reproduce the vulnerability.

Upon receipt, the maintainer will review, respond, and fix the vulnerability in a timely manner.

0 comments on commit 788a2e7

Please sign in to comment.